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This invention relates to a payment transaction method and a payment 
transaction system. In particular, the present invention relates to a payment 
5 transaction method as set forth in the preamble of the independent method claim 
1 and a payment transaction system for execution of this payment transaction 
method. 

Owing to the increasing popularity and spread of mobile telephony, more 
and more customers of service points, so-called points of sale (POS), for example 

10 points of sale of products and/or services, are equipped with portable mobile 

telephones, in particular mobile radio telephones, which support the identification 
and authentication of a respective customer. Since non-cash forms of payment 
are being used more and more frequently for paying for products and/or services 
at the service point, and the customers are provided with numerous different 

15 identification cards for this purpose from the various service points, there has 
been a desire to use the above-mentioned portable mobile devices for this 
purpose. Conventional mobile radio telephones comprise an identification 
module, a so-called SIM (Subscriber Identification Module) chipcard, which 
contains a clear user identification, for example an IMSI (International Mobile 

20 Subscriber Identity), by means of which the respective user can be identified in a 
telecommunications network. To prevent the use of such a mobile device by an 
unauthorized user, a user must first authenticate himself at the mobile device, for 
example by entering a personal code (Personal Identification Number, PIN) by 
means of operating elements of the mobile device, which code, with the aid of 

25 security services, is compared with a value stored on the SIM chipcard. 

Described in the patent application EP 708 547 A2 is the use of a mobile 
radio telephone as the authenticated transaction controller. According to the 
teaching disclosed in EP 708 547 A2, a customer first authenticates himself in a 
sales store at his mobile radio telephone, for example through entry of a personal 

30 identification code; afterwards the store operator and the customer agree upon a 
transaction password, which is entered in his mobile radio telephone by the 
customer, and is transmitted wirelessly, together with identification data, for 
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example the appliance number and the telephone number of the mobile radio 
telephone, to a receiver of a payment terminal of the sales store. According to the 
teaching disclosed in EP 708 547 A2, the respective amount to be paid, which is 
either supplied by the payment terminal or is entered by the customer in his 

5 mobile radio telephone and is transmitted together with the transaction password 
and the identification data to the receiver of the payment terminal, and the 
identification data are passed on by the sales store to a credit center for credit 
checking. The transaction password described in EP 708 547 A2 makes it 
possible in particular for the payment terminal to assign the data on the respective 

10 transaction transmitted from the mobile radio telephone, and thereby not be 

interfered with through possible transmissions from other mobile radio telephones. 

It is the object of this invention to propose a new and better payment 
transaction method and a new and better payment transaction system, which can 
be used in particular for service points with a plurality of payment terminals and a 

15 plurality of customers with mobile devices. 

According to the invention, this object is attained in particular through the 
elements of the independent claims. Further preferred embodiments follow 
moreover from the dependent claims and from the specification. 

This object is achieved through the present invention in particular in that: 

20 - in the payment transactions between a customer with a portable mobile 

device, for example a mobile radio telephone or a palm or laptop computer, 
capable of communication, and a service point with a plurality of payment 
terminals, in which payment transactions a payment terminal of the service point 
determines a total transaction amount to be paid and a transaction identification 

25 assigned to this total transaction amount, and informs the customer about this 
total transaction amount and this transaction identification, the payment terminal 
adds a payment terminal identification to the transaction identification upon 
determining the transaction identification, which payment terminal identification 
makes it possible to identify the respective payment terminal from a plurality of 

30 payment terminals existing at the service point; 

- via a contactless device interface, for example an infrared interface or a 
radio interface, the mobile device transmits the transaction identification entered 
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into the mobile device by the customer to the payment terminal identified through 
the payment terminal identification; 

- after receipt of the transaction identification, the payment terminal 
transmits a payment request, containing at least one service point identification, 

5 the payment terminal identification and the total transaction amount, via the 
contactless device interface to the mobile device, and 

- in the mobile device, a payment record is prepared which comprises a 
linking of the payment request to a customer identification of the customer, and 
transmits it from the mobile device to the payment terminal via the contactless 

10 device interface. 

Thus in the payment transaction method and payment transaction system 
according to the invention, a payment transaction between a customer with a 
portable mobile device and a service point with a plurality of payment terminals is 
carried out in two phases. In the first phase, in which the transaction identification 

15 is determined, is made known, is entered by the customer in his mobile device, 
and is transmitted to the payment terminal, identified through the transaction 
identification, the payment terminal taking part in the respective payment 
transaction and the mobile device taking part in the respective payment 
transaction are assigned to one another, a logical communication link being 

20 established, for example, between these payment transaction partners. Then, in 
the second phase, the financial aspect of the payment transaction can be carried 
out between the payment transaction partners, the payment request of the 
payment transaction being transmitted from the payment terminal to the mobile 
device taking part in the respective payment transaction, and, for example after 

25 the payment request has been accepted by the respective customer by means of 
operating elements of the mobile device, a payment record being prepared in the 
mobile device in that the payment request is linked to a customer identification of 
the customer, and, for example, is provided with an electronic signature of the 
customer, or is executed as a secured certificate, and the payment record being 

30 transmitted from the mobile device to the payment terminal taking part in the 
respective payment transaction, where the payment record is further processed 
and/or passed on, for example to a clearing point. 



The advantage of this two-phase procedure consists in that prior to the 
exchange of financial data of the cashless payment transaction, the payment 
transaction partners are clearly assigned to one another, whereby the authenticity 
of the two partners can also be checked, for example, so that payment requests 
5 from a payment terminal can be automatically transmitted to the responsible 
mobile device, and made available there to the responsible customer, and 
payment records, which can be provided in particular with an electronic signature 
of the customer, can be automatically transmitted from the responsible mobile 
device to the responsible payment terminal. 

10 During transmission of the transaction identification, entered by the 

customer, from the mobile device to the payment terminal, a sender identification 
is preferably co-transmitted, for example an appliance identification of the mobile 
device or a logical or physical address of the contactless interface of the mobile 
device, and the payment request from the payment terminal is transmitted to the 

15 mobile device, determined through this sender identification. The advantage of 
the co-transmitted sender identification consists in that the payment terminal can 
address a mobile device directly as the payment transaction partner, and other 
mobile devices, which are not participating in the respective payment transaction, 
do not have to examine the contents of unaddressed communications received 

20 from a plurality of payment terminals. 

In an embodiment variant, the payment terminal increases at least once the 
transmitting power of the contactless device interface and transmits the payment 
request with the increased transmitting power to the mobile device if the payment 
terminal has not received any payment record from the mobile device within a 

25 predefined time period from the transmission of the payment request without 
power increase to the mobile device. The varying of the transmitting power has 
the advantage that, on the one hand, other mobile devices, which are not 
participating in the respective payment transaction and are usually located at a 
greater distance from the payment terminal than a mobile device taking part in the 

30 payment transaction, are not unnecessarily disturbed by communications of the 
payment terminal, and that, on the other hand, if the mobile device taking part in 
the payment transaction is located outside the range of the not increased 
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transmitting power of the payment terminal, it can nevertheless still be reached 
through the increase in the transmitting power. 

Before transmission of the payment record to the payment terminal, data 
about the type of payment are preferably added to the payment record in the 

5 mobile device, for example charging to a particular credit card number, debiting a 
particular customer account, debiting a particular bank account, or debiting from a 
prepaid monetary amount stored in the mobile device, for example on the SIM 
card of the mobile device. The addition of data about the intended type of 
payment has the advantage that the flexibility of the payment transaction method 

10 and payment transaction system according to the invention is thereby increased, 
and that, depending upon the type of desired payment type, at least certain 
payment transactions can be entered directly (on-line) and automatically, while 
others can be entered subsequently (off-line), for example with the aid of a 
clearing point suitable for this purpose. 

15 In an embodiment variant, the payment record is stored in the mobile 

device, for example on the SIM card of the mobile device. The advantage of 
storing of payment records in the mobile device consists in that it is thereby made 
possible for the customer to keep records about payment transactions made and 
to use a payment record stored in the mobile device as a receipt, in particular 

20 when the payment request contained in the payment record includes a certificate 
or an electronic signature of the respective service point. 

In an embodiment variant, the customer authenticates himself at his mobile 
device, for example with a biometric feature, for example a fingerprint, a voice 
pattern or an eye pattern. The use of biometric features for authentication of a 

25 user has the advantage that the security entailed therewith is higher than with the 
use of a personal code, which can be guessed by wrongful users, for example, or 
can be forgotten by the rightful user. 

One embodiment of the present invention will be described in the following 
with reference to an example. The example of the embodiment will be illustrated 

30 by the following single attached figure: 

Figure 1 shows a block diagram which illustrates schematically a service 
point in which a plurality of mobile devices and a plurality of payment terminals 



are located, the payment terminals being connected to a clearing point via a 
telecommunications network. 

In Figure 1 , elements designated by the same number, are to be 
considered as equivalent elements. The reference numeral 5 in Figure 1 relates 
5 to a service point, a so-called point of sale (POS), for example a sales point for 
products and/or services accessible to the public. As illustrated in Figure 1, a 
plurality of payment terminals 2 and a plurality of mobile devices 1 carried by 
customers are located at the service point 5. 

The portable mobile devices 1 are, for example, mobile radio telephones, 
10 laptop or palmtop computers or other suitable portable mobile devices which have 
a contactless device interface 1 1 in order to communicate with corresponding 
contactless device interfaces 21 of the payment terminals 2, i.e. to exchange data 
bidirectionally. 

The contactless device interfaces 11,21 shown schematically in Figure 1 

15 each comprise the necessary hardware elements for the transmitter and receiver 
of the contactless device interface, for the control of the contactless device 
interface as well as for the connection of the contactless interface to a processor 
16, 26 of the mobile device 1 , respectively of the payment terminal 2. The 
contactless device interfaces 11, 21 shown schematically in Figure 1 each 

20 additionally comprise programmed software modules and software interfaces 

which are needed for the operation and control of the contactless interface 11,21, 
and which also execute the communications protocol or protocols necessary for 
communications processing. The contactless device interfaces 11,21 are, for 
example, infrared interfaces, for example High Speed Infrared (HSIR) interfaces 

25 or IrDA (Infrared Data Association) interfaces, inductive interfaces, for example 
Radio Frequency Identification (RFID) interfaces, Home RF (Radio Frequency) 
interfaces, Digital European Cordless Telecommunications (DECT) interfaces or 
other Cordless Telecommunications System (CTS) interfaces, or high-frequency 
radio interfaces, in particular so-called bluetooth interfaces, which work, for 

30 example, at 2.4 GHz, and at the time of writing the application for the present 
invention were described on the Internet on the page ww.biuctooth.com. 
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The term "software module" used in the present specification relates in 
each case to a program code which is stored in a memory and is executed on a 
processor, for example in cooperation with suitable operational systems and/or 
with the aid of services of virtual platforms, e.g. Java Virtual Machine (Java is a 

5 registered trademark of Sun Microsystems), so that the processor can be 

controlled in such a way that it executes the respective functions associated with 
the software module. One skilled in the art will understand that the programming 
language used for execution of the software module does not change the sense of 
the present invention, but that however the use of certain programming 

10 languages, for example Java or another object-oriented and platform-independent 
programming language, can very well have advantages known to one skilled in 
the art. 

The payment terminals 2 are based, for example, on conventional 
electronic point of sale systems, which are equipped with operating elements and 

15 price detection components (not shown), e.g. laser scanners, and comprise at 
least one processor 26 as well as a contactless device interface 21 , described 
above. The payment terminals 2 comprise a transaction identification module 22, 
which is designed as the programmed software module, for example, which 
establishes a transaction identification for a payment transaction. This 

20 transaction identification contains at least one payment terminal identification, 
which makes it possible to determine a payment terminal 2 in question from 
among the plurality of payment terminals 2 existing at the service point 5, as well 
as a transaction number which is incremented progressively, for example, with 
each new payment transaction. 

25 The transaction identification determined for a payment transaction is 

displayed by the payment terminal 2, for example by the transaction identification 
module 22 or by another programmed software module of the payment terminal 2, 
on a display 29 of the payment terminal 2 together with the total transaction 
amount to be paid by the respective customer, determined by the payment 

30 terminal 2 for this payment transaction. The respective customer is thereby 

informed about the total transaction amount and the transaction identification for 
the payment transaction. 
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If the customer would like to pay the total amount of the payment 
transaction by means of his mobile device 1, he switches on his mobile device 1, 
and, to be on the safe side, in an embodiment variant, is requested by an 
authentication module 12 of the mobile device 1, for example a programmed 

5 software module, to authenticate himself The customer is asked, for example, to 
enter a personal identification code (Personal Identification Number, PIN), which 
is received by the authentication module 12 and is compared with a code stored in 
a protected way in the mobile device 1 , for example on a SIM card 17 (Subscriber 
Identification Module) of the mobile device 1 . In a variant, the authentication 

10 module has moreover hardware components and further software components in 
order to receive a biometric feature from the customer for authentication and to 
compare it with a biometric feature previously stored in a protected way in the 
mobile device 1 , for example on a SIM card 17 of the mobile device 1 . The 
biometric feature is, for example, a voice pattern, which is recorded by means of a 

15 microphone of the mobile device 1 , a fingerprint or a facial feature, which are 
captured with a video sensor of the mobile device 1 , or an eye pattern, e.g. a 
pattern of the iris or the retina, which is recorded with a suitable scanner. 

After successful authentication, if applicable, the customer selects on his 
mobile device 1 , for example by means of the operating elements 18, the function 

20 "payment transaction" from a function menu shown on the display 19 of the mobile 
device 1 . The menu and function flow control is carried out, for example, through 
a programmed software module of the mobile device 1 , e.g. through a Java 
applet, which is stored, for example, on the SIM card 17 of the mobile device 1 . 
The software module or modules for execution of the function "payment 

25 transaction" can be disabled for security reasons, for example by an operator in 
charge via the contactless device interface 1 1 or via a mobile radio network (not 
shown), for example in that a signed or certified command is transmitted to the 
mobile device 1 using suitable messages. 

After selection of the function for the payment transaction, the user is 

30 prompted by the transaction response module 13 of the mobile device 1 , for 

example a programmed software module, to enter the transaction identification for 
the respective payment transaction. The customer can type in the transaction 
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identification, for example, by means of the operating elements 18 of the mobile 
device 1 . To prevent entry errors, in a variant, the transaction response module 
13 can request, via the contactless device interface 11, 21, from the payment 
terminal 2 the transaction identifications of the current payment transactions so 
5 that the customer can enter the transaction identification for the respective 
payment transaction by selecting the respective transaction identification by 
means of operating elements 18 of the mobile device 1 from a list of current 
transaction identifications displayed on the display 19 of the mobile device 1 . 
The transaction response module 13 takes from the transaction 

10 identification received from the customer the payment terminal identification 
contained therein, and transmits, as indicated by the arrow S1 in Figure 1, the 
transaction identification to the payment terminal 2 identified through this payment 
terminal identification. One skilled in the art will understand that, depending upon 
the type of contactless device interface 11, 21, the payment terminal identification 

15 can thereby be used by the transaction response module 13 as address on the 
physical layer or as address on one of the above-lying layers (protocol layer), 
according to the OSI reference model (Open Systems Interconnection) defined by 
the ISO (International Standards Organisation). In transmitting the transaction 
identification to the respective payment terminal 2, a sender identification, 

20 identifying the respective mobile device 1, or respectively the contactless 
interface 1 1 of the respective mobile device 1 , is added by the transaction 
response module 13, or by corresponding functions of the contactless device 
interface 1 1 , to the transaction identification for co-transmission. 

In the payment terminal 2 in question, the transmitted transaction 

25 identification, and if applicable the added sender identification, is received via the 
contactless interface 21, and a logical communications link is established, for 
example, between the payment terminal 2 and the mobile device 1. Then 
prepared by a payment request module 23 of the respective payment terminal 2, 
for example a programmed software module, is a payment request containing at 

30 least the service point identification of the service point 5 t the payment terminal 
identification of the respective payment terminal 2 as well as the total transaction 
amount to be paid for the respective payment transaction. One skilled in the art 
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will understand that the service point identification and the payment terminal 
identification can also be replaced by a clear, combined payment terminal 
identification; however a transaction identification thereby results which is not 
suitable for manual typing into a mobile device 1, however, owing to the number 

5 of necessary digits. The payment request module 23 transmits the prepared 
payment request, as indicated by the arrow S2 in Figure 1 , via the contactless 
device interface 21 to the mobile device 1 from which the transaction identification 
was received. For this purpose the payment request module 23 uses the sender 
identification received from this mobile device 1, or respectively the previously 

10 established logical communications link, or, in a variant, transmits the payment 
request in a broadcasting way, the payment request being filtered in the receiving 
mobile devices 1 on the basis of the transaction identification. It should be 
mentioned here that, to increase security, in particular to establish the authenticity 
of the payment terminal 2, the payment request is provided with an electronic 

15 signature of the service point 5 by the payment request module 23, or is executed 

i 

v as a secured certificate. 



^ received via the contactless interface 1 1 , and, depending upon the variant, is 

filtered, if applicable, on the basis of the transaction identification contained 
20 therein, in that the transaction identification cor/tained in the payment request is 
compared by the mobile device 1 with the transaction identification previously 
transmitted to the payment terminal 2. A payment record is prepared in a 
payment record module 14 of the mobile de/vice 1 , for example a programmed 
software module, on the basis of the received payment request, for example after 
25 the authenticity of the payment request, respectively the authenticity of the 
payment terminal 2, has been checked >and the payment request has been 
displayed to the customer on the display 19 of the mobile device 1 , and the 
customer, by means of the operating/elements 18 of the mobile device 1, has 
accepted and thereby enabled the payment. The prepared payment record 
30 comprises the received payment request and a customer identification of the 
customer, for example a IMSI (International Mobile Subscriber Identity) or a user 
number especially allocated for this type of payment described here, which in 




In the mobile device 1 in question, the transmitted payment request is 
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each case are stored on ihl SIM card 17 of the mobile device 1 . To improve 
security, the payment record can be provided with an electronic signature of the 
respective customer 5 <sic> by the payment record module 14, or can be 
executed as a secured Certificate. 

5 In addition, the payment record module 14 preferably adds to the payment 

record indications about the desired type of payment, which indications are 
stored, for example, as the default value in the SIM card 17 of the mobile device 1 
or are requested by the respective customer via the display 19 of the mobile 
device 1 and are received via the operating elements 18. The indications about 

10 the desired type of payment specify, for example, a desired charging of the total 
transaction amount to a particular credit card number, a debiting of a particular 
customer account, a debiting of a particular bank account or a debiting from a 
prepaid monetary amount stored in the mobile device, for example on the SIM 
card of the mobile device. The payment record module 14 transmits the prepared 

is payment record, as indicated by the arrow S3 in Figure 1 , via the contactless 

device interface 1 1 , 21 to the payment terminal 2 from which the payment request 
was received. The payment records are preferably stored, for example by the 
payment record module 14, in a memory 15 of the mobile device 1, for example on 
a SIM card 17 of the mobile device 1 , so that they can be used later as a receipt 

20 and/or so that they are available to the respective customer for administrating the 
payment transactions he has made. 

The payment record is received in the respective payment terminal 2, for 
example by the payment request module 23, and is further processed, taking into 
consideration the indications contained therein about the type of payment desired 

25 by the customer, if applicable, and the purchased products and/or services are 
released to the customer, for example after successful checking of the credit 
worthiness of the customer and/or after checking of the signature of the customer. 
By means of a communications module 24, the payment records can be passed 
on, for example, to a clearing point 4 via the telecommunications network 3. 

30 If, within a predefined time period from the transmission of the payment 

request, the payment request module 23 has received no payment record from the 
mobile device 1, the payment request module 23, in a variant embodiment, can 
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increase the transmitting power of the contactless device interface 21 , for 
example via the software interface of the contactless device interface 21 , and can 
transmit the payment request again. The normally used transmitting power can 
thereby be calculated in such a way that it suffices to transmit data successfully 
5 from the payment terminal 2 via the contactless device interface 21 to the mobile 
device 1 when the mobile device 1 is located in the immediate vicinity of the 
payment terminal 2 in question, for example within one to two meters, without 
thereby disturbing mobile devices 1 further away. 

As has already been mentioned in connection with the menu and function 

10 flow control for the selection of the function "payment transaction", the software 
modules, in particular the transaction response module 13 and the payment 
record module 14 as well as software components of the authentication module 
12, can be stored, for example as Java applet, e.g. on the SIM card 17 of the 
mobile device, and can also be executed on a processor of the SIM card 17, for 

is example. The software modules can moreover be designed so that they can be 
disabled by an authorized operator via the contactless device 1 1 or via a mobile 
radio network (not shown), for example if the owner of the mobile device 1 has 
reported the loss of the mobile device 1 in question to an operator in charge. 

It should be pointed out here that in the above specification, only mobile 

20 radio devices and palm and laptop computers have been cited as concrete 

examples for the mobile device 1 . One skilled in the art will understand, however, 
that also other mobile devices can be used, in particular simpler mobile devices 1 
with suitable contactless device interfaces 11, which mobile devices 1 do not 
comprise any mobile telephone components for communication over a mobile 

25 radio network, for example, and which have only the necessary software module 
and hardware components for participating in the described method, and which 
are made available, for example, to the customer by the service point 5 for their 
stay at the service point 5, and into which the customers can insert their personal 
chipcards, for example SIM cards 17, in particular for authentication and 

30 identification purposes, but also for the storing of payment records. 



m 

Furthermore, as a final point, it should be added that, to increase security, 
the data transmissions via the contactless interface 11,21 can be encrypted 
according to a method known to one skilled in the art. 
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List of Reference Symb Is 



1 


mobile device 


2 


payment terminal 


3 


telecommunications network 


4 


clearing point 


5 


service point (POS) 


11 


contactless device interface 


12 


authentication module 


13 


transaction response module 


14 


payment record module 


15 


memory means 


16 


processor 


17 


SIM card 


18 


operating elements 


19 


display 


21 


contactless device interface 


22 


transaction identification module 


23 


payment request module 


24 


communications module 


26 


processor 


29 


display 


S1 


transmission of the transaction identification 


S2 


transmission of the payment request 


S3 


transmission of the payment record 



